The existence of a backdoor that can obtain root authority by bypassing authentication to Android's firmware was found out

ByCalvin Wray

Security expert John Sawyer pointed out that the Android firmware made by Foxconn has a backdoor of the bootloader that is in a state that it can access the functions of the terminal bypassing authentication.

Pork Explosion Unleashed - BBQ and 0 days - Thought on BBQ from a Security Researcher or thoughts on InfoSec from a Pit Master?
http://bbqand0days.com/Pork-Explosion-Unleashed/


Android Devices That Contain Foxconn Firmware May Have a Secret Backdoor
http://news.softpedia.com/news/backdoor-discovered-in-some-foxconn-made-android-smartphones-509271.shtml


Mr. Sawyer noticed this back door named "Pork Explosion" at the end of August 2016. Why is this back door installed in the boot loader, because Foxconn is in charge of the firmware of many OEM products and uses it for debugging.

According to Mr. Sawyer, when connecting a computer via this USB with an Android terminal with this backdoor it is possible to access the function of the terminal by avoiding the authentication , He seems to have succeeded in actually sending a command to enter factory test mode with my own software.

In factory test mode you get root privileges that can do almost everything and is installed as a security component on AndroidSecurity-Enhanced Linux (SELinux)Will be invalid. In this state, you can break through the passcode without resetting the user data using brute force attack, and you can also extract the data in the terminal. According to Mr. Sawyer, the mobile phone vendor did not know the existence of this backdoor.

Mr. Sawyer did not reveal how many terminals this "Pork Explosion" exists, but as a confirmation method of the corresponding terminal, I mentioned the presence of the partition "ftmboot" "ftmdata". In fact, Nextbit, a venture maker that sells "Robin" terminal, said he worked with Mr. Sawyer and successfully corrected the vulnerability by cutting these two partitions.